Adobe InDesign < 14.0.2 Arbitrary Code Execution Vulnerability (APSB19-23)
Medium Nessus Plugin ID 124022
SynopsisThe remote host has an application installed that is affected by Arbitrary Code Execution Vulnerability.
DescriptionThe version of Adobe InDesign installed on the remote Windows host is prior to 14.0.2. It is, therefore, affected by a Arbitrary Code Execution vulnerability exists due to unsafe hyperlink processing vulnerability exists Webkit component of MacOS. An authenticated, remote attacker can exploit this issue, to cause execution of arbitary code or application to stop responding.
SolutionUpgrade to Adobe Photoshop CC version 14.0.2 or later.